Divide By Zero

CVE-2019-14498

High

7.8/10

Summary

A divide-by-zero error exists in the Control function of demux/caf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted CAF file.

Attack Complexity: LOW
Attack Vector: LOCAL
Integrity Impact: HIGH
Scope: UNCHANGED
User Interaction: REQUIRED
Privileges Required: NONE
Confidentiality Impact: HIGH
Availability Impact: HIGH

CWE-369 - Divide By Zero

The product divides a value by zero.

References

Advisory Timeline

Published Aug 29, 2019

Divide By Zero

CVE-2019-14498

Summary

CWE-369 - Divide By Zero

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS